$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/29bedfc3-5012-48c2-8699-377e478d8269.roa File: 29bedfc3-5012-48c2-8699-377e478d8269.roa (raw, json) Hash identifier: itMvLmPMdMdNXiqZc+rqqeyiBMuyR5oR2iJNjiiy+vU= Subject key identifier: B0:D0:FA:A9:53:14:A6:20:D8:20:0D:61:59:88:23:96:2C:06:F4:2F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6058C358BA1CC26056DFADE1E9E2C239EEB461FB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/29bedfc3-5012-48c2-8699-377e478d8269.roa Signing time: Sun 22 Feb 2026 00:10:58 +0000 ROA not before: Sun 22 Feb 2026 00:10:58 +0000 ROA not after: Sat 23 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:58:c3:58:ba:1c:c2:60:56:df:ad:e1:e9:e2:c2:39:ee:b4:61:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Feb 22 00:10:58 2026 GMT Not After : May 23 23:59:59 2026 GMT Subject: serialNumber=b137a044ad054955cccf752661a658d8ed8b3a33ed441ffb26485e27131538e4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ad:16:e0:89:58:5e:fa:96:81:81:df:6b:87: 8c:96:0a:bf:10:b5:b7:da:82:d6:d4:da:0d:c0:49: 76:8d:42:54:35:1a:ef:b5:42:0d:75:6f:fd:d1:49: 4b:73:f0:89:54:bc:3c:26:52:c4:9d:b1:8b:2e:3a: b9:56:e1:b6:05:72:d9:97:58:d6:f5:e4:e9:3e:e5: 98:07:df:ab:33:1f:7a:11:67:d5:93:97:90:24:37: 5b:14:b8:4e:55:5d:43:04:48:11:1a:06:27:f5:04: 07:38:01:62:84:20:f5:8f:00:00:7a:15:f2:77:8c: 97:6f:d0:2f:35:8e:56:e7:d4:78:f7:34:d4:06:32: 3a:30:cd:1d:ac:56:a1:04:bd:e3:b6:9e:27:3e:7d: 88:f1:f2:1a:02:64:6d:e2:97:3e:34:4e:08:a9:74: c2:3c:ad:80:32:03:7e:e7:ee:c6:dc:69:b3:80:36: cf:11:9c:6b:e5:39:58:b2:86:c8:95:2e:8a:eb:bf: a1:12:7e:32:10:b8:26:0b:86:b9:68:72:51:ea:8e: 68:c5:e3:7f:5f:c0:bc:d4:4c:d0:37:21:04:06:c4: f7:c6:c9:de:5b:6e:7d:6f:58:31:52:ac:b0:70:2a: bd:fe:cf:da:ce:94:76:66:19:dd:30:de:e0:02:d4: 05:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D0:FA:A9:53:14:A6:20:D8:20:0D:61:59:88:23:96:2C:06:F4:2F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/29bedfc3-5012-48c2-8699-377e478d8269.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36:1000::/40 Signature Algorithm: sha256WithRSAEncryption 18:9f:04:47:97:77:73:3e:d6:79:a1:47:b3:d4:59:23:23:7a: 2d:e0:92:bb:93:26:df:5f:00:b1:af:85:e2:58:a1:59:97:22: 85:40:33:a8:b7:39:7a:10:c4:47:c8:bb:f1:08:03:bf:cf:af: c6:93:b3:a0:e4:1e:fa:47:a9:8a:79:76:9b:70:00:bc:c2:32: 23:c0:44:fc:f7:36:d7:e8:5e:88:cb:f0:20:b1:53:04:7c:35: 6f:5d:65:fe:1a:7e:ea:a2:cd:17:96:f0:48:53:a6:5e:8d:1e: b8:27:7e:3f:87:ae:17:58:50:85:40:ac:c1:f1:49:c0:1b:d7: 5a:d7:e1:d2:67:a7:33:4c:fc:60:4b:32:96:14:57:f7:cd:08: 4a:de:2e:2b:7e:48:7a:13:90:2b:48:c3:b8:0e:6f:d4:a6:aa: c1:70:17:ea:7b:c3:18:fa:0e:04:84:cc:11:44:07:bb:a1:80: 7e:7d:1b:3d:b5:9b:21:86:b4:9d:8b:b5:30:f7:7b:b9:20:dd: 52:5b:3b:9b:5c:35:91:80:4a:d2:38:9f:01:b4:83:e3:4c:17: bd:56:e0:09:e9:82:76:d4:25:6d:2c:76:d6:7d:24:20:ff:6a: 84:0e:01:87:d3:c2:95:12:5b:8f:bc:8d:0f:f5:6e:41:6f:81: af:9d:ef:c2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYFjDWLocwmBW363h6eLCOe60YfswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDIyMjAwMTA1OFoX DTI2MDUyMzIzNTk1OVowejFJMEcGA1UEBRNAYjEzN2EwNDRhZDA1NDk1NWNjY2Y3 NTI2NjFhNjU4ZDhlZDhiM2EzM2VkNDQxZmZiMjY0ODVlMjcxMzE1MzhlNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4a0W4IlYXvqWgYHfa4eMlgq/ELW3 2oLW1NoNwEl2jUJUNRrvtUINdW/90UlLc/CJVLw8JlLEnbGLLjq5VuG2BXLZl1jW 9eTpPuWYB9+rMx96EWfVk5eQJDdbFLhOVV1DBEgRGgYn9QQHOAFihCD1jwAAehXy d4yXb9AvNY5W59R49zTUBjI6MM0drFahBL3jtp4nPn2I8fIaAmRt4pc+NE4IqXTC PK2AMgN+5+7G3GmzgDbPEZxr5TlYsobIlS6K67+hEn4yELgmC4a5aHJR6o5oxeN/ X8C81EzQNyEEBsT3xsneW259b1gxUqywcCq9/s/azpR2ZhndMN7gAtQFnQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLDQ+qlTFKYg2CANYVmII5YsBvQvMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI5YmVkZmMzLTUwMTItNDhjMi04Njk5LTM3N2U0NzhkODI2OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaNhAwDQYJKoZIhvcNAQELBQADggEBABifBEeXd3M+1nmhR7PU WSMjei3gkruTJt9fALGvheJYoVmXIoVAM6i3OXoQxEfIu/EIA7/Pr8aTs6DkHvpH qYp5dptwALzCMiPARPz3NtfoXojL8CCxUwR8NW9dZf4afuqizReW8EhTpl6NHrgn fj+HrhdYUIVArMHxScAb11rX4dJnpzNM/GBLMpYUV/fNCEreLit+SHoTkCtIw7gO b9SmqsFwF+p7wxj6DgSEzBFEB7uhgH59Gz21myGGtJ2LtTD3e7kg3VJbO5tcNZGA StI4nwG0g+NMF71W4AnpgnbUJW0sdtZ9JCD/aoQOAYfTwpUSW4+8jQ/1bkFvga+d 78I= -----END CERTIFICATE-----Generated at Sun Mar 1 23:52:55 2026 by rpki-client